GDPR Compliance

At Constanique LLC, protecting your data sovereignty is the foundation of our engineering philosophy. We have built Deepfake Defend to exceed the requirements of the General Data Protection Regulation (GDPR).

1. By-Design Data Minimization

The majority of our capabilities, including the Deepfake Media Scanner, execute wholly within a localized edge compute environment. We process the required data strictly in memory on your endpoint. We do not transmit scanned audiovisual material to our servers; naturally, what isn't collected cannot be breached or mishandled.

2. Data Processing under GDPR

For operations requiring cloud interaction—specifically, receiving payment for the Incident Response Policy Generator and delivering the final document, as well as serving the informational newsletter—we act as a Data Controller. The lawful basis varies depending on necessity, typically processing performance of contract or user consent.

3. User Rights Within the EU

• Right to Avoid Storage: Our primary scanner fulfills this proactively by architecture.
• Right to be Forgotten: Applicable specifically to any payment email details or newsletter sign-ups remaining post-transaction.
• Right to Portability: A complete data ledger of any residual cloud-based personal information can be requested.

4. International Transfers

Deepfake Defend operates primary servers within the US. Any necessary data transit complies fully with EU-US Data Privacy Frameworks.

5. DPO Contact

Direct inquiries to our Data Protection representative: compliance@deepfakedefend.com